| CVE ID | Project | Description |
|---|---|---|
| CVE-2025-54409 | AIDE | NULL pointer dereference leading to DoS |
| CVE-2025-54389 | AIDE | Improper output neutralization (detection bypass) |
| CVE-2021-42086 | Zammad | Privilege Escalation to admin |
| CVE-2021-42094 | Zammad | Command Injection via Package installation |
| CVE-2021-42091 | Zammad | Server side request forgery |
| Name | Description |
|---|---|
| bpfdoorpoc | PoC for bpfdoor rootkit's eBPF technique and effective detection |
| termspy | PoC terminal keylogger using ptrace |
| dns2proc | Bash script to correlate DNS queries with the processes that made them |
| ptrace_code_injection | PoC for injecting code into existing process with ptrace |
| python-logging.config-exploit | PoC for Python's security consideration "Logging configuration uses eval()" |
| vscode_trusted_rce | PoC for code execution from loading a trusted project in VSCode |
| pacecalculator.net | Pace Calculator and Planner for Runners |
- PyCQA/bandit (Python SAST) plugin: logging_config_insecure_listen
- CIS Benchmark for Linux: 1.5.3 - Ensure ptrace_scope is restricted
- Minor improvements
- VirusTotal YARA: security bug report
- Clam Anti-Virus: security bug report
- GTFOBins : pip abuse
- Osquery: detection pack improvement